Oval Definition:
oval:org.mitre.oval:def:21183
Revision Date
:
2014-02-17
Version
:
11
Title
:
RHSA-2013:1473: spice-server security update (Important)
Description
:
Stack-based buffer overflow in the reds_handle_ticket function in server/reds.c in SPICE 0.12.0 allows remote attackers to cause a denial of service (crash) via a long password in a SPICE ticket.
Family
:
unix
Class
:
patch
Status
:
ACCEPTED
Reference(s)
:
CESA-2013:1473
CVE-2013-4282
RHSA-2013:1473-00
Platform(s)
:
CentOS Linux 6
Red Hat Enterprise Linux 6
Product(s)
:
spice-server
Definition Synopsis
Redhat 6 or Centos 6 release
The operating system installed on the system is Red Hat Enterprise Linux 6
OR
The operating system installed on the system is CentOS Linux 6.x
AND
Packages section
spice-server is earlier than 0:0.12.0-12.el6_4.5
OR
spice-server-devel is earlier than 0:0.12.0-12.el6_4.5
BACK